DES-1228/ME Metro Ethernet Managed Switch CLI Reference Guide
261
config authen_enable
Administrator. A maximum of eight enable method lists can be
implemented simultaneously on the Switch.
The sequence of methods implemented in this command will affect
the authentication result. For example, if a user enters a sequence of
methods like tacacs – xtacacs – local_enable, the Switch will send
an authentication request to the first TACACS host in the server
group. If no verification is found, the Switch will send an
authentication request to the second TACACS host in the server
group and so on, until the list is exhausted. At that point, the Switch
will restart the same sequence with the following protocol listed,
xtacacs. If no authentication takes place using the xtacacs list, the
local_enable password set in the Switch is used to authenticate the
user.
Successful authentication using any of these methods will give the
user an “Admin” level privilege.
Parameters
default – The default method list for administration rights
authentication, as defined by the user. The user may choose one or
a combination of up to four of the following authentication methods:
tacacs – Adding this parameter will require the user to be
authenticated using the TACACS protocol from the remote TACACS
server hosts of the TACACS server group list.
xtacacs – Adding this parameter will require the user to be
authenticated using the XTACACS protocol from the remote
XTACACS server hosts of the XTACACS server group list.
– Adding this parameter will require the user to be
authenticated using the protocol from the remote
server hosts of the server group list.
radius – Adding this parameter will require the user to be
authenticated using the RADIUS protocol from the remote RADIUS
server hosts of the RADIUS server group list.
server_group <string 15>
−
Adding this parameter will require the
user to be authenticated using a user-defined server group
previously configured on the Switch.
local_enable
−
Adding this parameter will require the user to be
authenticated using the local user account database on the Switch.
none – Adding this parameter will require no authentication to
access the Switch.
method_list_name – Enter a previously implemented method list
name defined by the user (create authen_enable). The user may add
one, or a combination of up to four of the following authentication
methods to this method list:
tacacs – Adding this parameter will require the user to be
authenticated using the TACACS protocol from a remote TACACS
server.
xtacacs – Adding this parameter will require the user to be
authenticated using the XTACACS protocol from a remote
XTACACS server.
– Adding this parameter will require the user to be
authenticated using the protocol from a remote
server.
radius
−
Adding this parameter will require the user to be
authenticated using the RADIUS protocol from a remote RADIUS
server.
server_group <string 15>
−
Adding this parameter will require the
user to be authenticated using a user-defined server group
previously configured on the Switch.
local_enable
−
Adding this parameter will require the user to be